{"id":37637,"date":"2025-05-13T02:27:01","date_gmt":"2025-05-13T02:27:01","guid":{"rendered":""},"modified":"2025-10-22T19:05:13","modified_gmt":"2025-10-23T01:05:13","slug":"cve-2025-4344-critical-buffer-overflow-vulnerability-in-d-link-dir-600l","status":"publish","type":"post","link":"https:\/\/www.ameeba.com\/blog\/cve-2025-4344-critical-buffer-overflow-vulnerability-in-d-link-dir-600l\/","title":{"rendered":"CVE-2025-4344: Critical Buffer Overflow Vulnerability in D-Link DIR-600L<\/strong>"},"content":{"rendered":"

Overview<\/strong><\/p>\n

The cybersecurity industry is dealing with a newly discovered vulnerability, CVE-2025-4344, a critical issue found in D-Link DIR-600L up to version 2.07B01. This vulnerability affects the formLogin function, leading to a buffer overflow condition through the manipulation of the host argument. It’s especially troubling as the vulnerability can be initiated remotely<\/a>, posing a significant threat to any system running the affected versions of this software.
\nThe risk level associated with this vulnerability is severe due to the potential<\/a> for system compromise or data leakage, which could lead to substantial financial and reputational damage. This issue particularly concerns those who are using products no longer supported by the maintainer, leaving them without official patches or updates to mitigate the risk.<\/p>\n

Vulnerability Summary<\/strong><\/p>\n

CVE ID: CVE-2025-4344
\nSeverity: Critical (8.8 CVSS Score)
\nAttack Vector: Network
\nPrivileges Required: None
\nUser Interaction: None
\nImpact: System Compromise and\/or Data<\/a> Leakage<\/p>\n

Affected Products<\/strong><\/p>

\r\n

\r\n \r\n \"Ameeba\r\n <\/a>\r\n A new way to communicate\r\n <\/h2>\r\n\r\n

\r\n Ameeba Chat is built on encrypted identity, not personal profiles.\r\n <\/p>\r\n\r\n

\r\n Message, call, share files, and coordinate with identities kept separate.\r\n <\/p>\r\n\r\n